ISS X-Force Database: mcafee-ebusiness-utility-dos(33730): McAfee E-Business Server administration utility service denial of service

McAfee E-Business Server administration utility service denial of service

mcafee-ebusiness-utility-dos (33730)

Low Risk

Description:

McAfee E-Business Server is vulnerable to a denial of service, caused by the improper handling of authentication packets in the administration utility service. By sending a specially-crafted authentication packet with an overly large length value, a remote attacker could exploit this vulnerability to crash the affected service.

Platforms Affected:

McAfee, E-Business Server 8.1
McAfee, E-Business Server 8.5.1

Remedy:

Refer to the McAfee Security Bulletin for patch, upgrade or suggested workaround information. See References.

Consequences:

Denial of Service

References:

McAfee Security Bulletin, e-Business Server 8.5.2 or 8.1.1 fixes a possible degrade of service vulnerability for the e-Business administration utility service [612751] at https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=612751&command=show&forward=nonthreadedKC.
McAfee Web site, McAfee E-Business Server at http://www.mcafee.com/us/smb/products/encryption/ebusiness_server.html.
BID-23544: McAfee E-Business Administration Server Authentication Packet Denial of Service Vulnerability
CVE-2007-2151: The administration server in McAfee e-Business Server before 8.1.1 and 8.5.x before 8.5.2 allows remote attackers to cause a denial of service (service crash) via a large length value in a malformed authentication packet, which triggers a heap over-read.
SA24893: McAfee e-Business Server Authentication Packet Processing Denial Of Service
SECTRACK ID: 1017929: McAfee E-Business Server Administration Interface Can Be Crashed By Remote Users Sending Invalid Packet Length Header Values
VUPEN/ADV-2007-1434: McAfee e-Business Server Administration Service Remote Denial of Service Vulnerability

Reported:

Apr 18, 2007

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page